10/25/20151 Single Sign-On Web Service Supervisors: Viktor Kulikov Alexander Sherman Liana Lipstov Pavel Bilenko.

Slides:

Advertisements

Similar presentations

Drybridge Consulting Party Identification Directory Installing the Microsoft Research Service IDEAlliance and Drybridge Consulting – collaborating to deliver.

Advertisements

Web Services & EAI.

Omni eControl. New Features in Version 2.x - Manage Mixed Networks: eDirectory, Active Directory, GroupWise, Exchange eControl Version 2.0 New Features.

Using the Self Service BMC Helpdesk

Unauthorized Reproduction Prohibited SkyPoint Alarm Integration Add-On Using OnGuard Alarms to create events in SkyPoint Also called ‘SkyPoint V0’ CR4400.

Naming Computer Engineering Department Distributed Systems Course Asst. Prof. Dr. Ahmet Sayar Kocaeli University - Fall 2014.

G O B E Y O N D C O N V E N T I O N WORF: Developing DB2 UDB based Web Services on a Websphere Application Server Kris Van Thillo, ABIS Training & Consulting.

SoftLab Project Winter 2008 Supervisor: Victor Kulikov Students: Dmitry Kanevsky Nir Lev-Ari.

15 Chapter 15 Web Database Development Database Systems: Design, Implementation, and Management, Fifth Edition, Rob and Coronel.

Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

Report Distribution Report Distribution in PeopleTools 8.4 Doug Ostler & Eric Knapp 7264.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Performed by:Gidi Getter Svetlana Klinovsky Supervised by:Viktor Kulikov 08/03/2009.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.

Systems Architecture, Fourth Edition1 Internet and Distributed Application Services Chapter 13.

Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.

Computer Science 101 Web Access to Databases Overview of Web Access to Databases.

Streamlining Support and Management through the Implementation of Active Directory Educause 2003 Mid-Atlantic Regional Gale D. Fritsche –

Authenticating REST/Mobile clients using LDAP and OERealm

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Overview of Database Access in.Net Josh Bowen CIS 764-FS2008.

Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.

Sql Server Advanced Features MIS 424 Professor Sandvig.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

CHAPTER 9 DATABASE MANAGEMENT © Prepared By: Razif Razali.

Customized cloud platform for computing on your terms !

MAHI Research Database Data Validation System Software Prototype Demonstration September 18, 2001

CIS 375—Web App Dev II Microsoft’s.NET. 2 Introduction to.NET Steve Ballmer (January 2000): Steve Ballmer "Delivering an Internet-based platform of Next.

1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!

WaveMaker Visual AJAX Studio 4.0 Training Authentication.

9 Chapter Nine Compiled Web Server Programs. 9 Chapter Objectives Learn about Common Gateway Interface (CGI) Create CGI programs that generate dynamic.

1 © 2008 Avaya Inc. All rights reserved. IPOffice Configuration Service Emil Ratnam.

Developing Applications for SSO Justen Stepka Authentisoft, LLC

CS480 Computer Science Seminar Introduction to Microsoft Solutions Framework (MSF)

Building Secure, Flexible and Scalable Environments using LDAP - SANS Orlando Sacha Faust PricewaterhouseCoopers

File Processing Concepts – Field – combination of 1 or more characters that is the smallest unit of data to be accessed – Record – group of related fields.

1 Introduction to Microsoft Windows 2000 Windows 2000 Overview Windows 2000 Architecture Overview Windows 2000 Directory Services Overview Logging On to.

Database Design and Management CPTG /23/2015Chapter 12 of 38 Functions of a Database Store data Store data School: student records, class schedules,

1 Chapter Overview Performing Configuration Tasks Setting Up Additional Features Performing Maintenance Tasks.

Hands-On Microsoft Windows Server Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.

VirtuaGrades A Web-Based Gradebook Application Don Tinsley CS 470 Project.

Using RADIUS as a AAA backbone for Windows networks Kostas Kalevras NTUA Network Operations Centre.

Amir Bishara and Dorin Danial Supervisors: Roiy Zysman Dr. Ilana David.

INTRODUCTION TO DBS Database: a collection of data describing the activities of one or more related organizations DBMS: software designed to assist in.

MEMBERSHIP AND IDENTITY Active server pages (ASP.NET) 1 Chapter-4.

DataFlow Diagram – Level 0

WEB SERVER SOFTWARE FEATURE SETS

Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.

Intro to Web Services Dr. John P. Abraham UTPA. What are Web Services? Applications execute across multiple computers on a network.  The machine on which.

Configuring and Deploying Web Applications Lesson 7.

Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.

Copyright 2007, Information Builders. Slide 1 iWay Web Services and WebFOCUS Consumption Michael Florkowski Information Builders.

Personalizing Web Sites Nasrullah. Understanding Profile The ASP.NET application service that enables you to store and retrieve information about users.

Directory Services CS5493/7493. Directory Services Directory services represent a technological breakthrough by integrating into a single management tool:

LINUX Presented By Parvathy Subramanian. April 23, 2008LINUX, By Parvathy Subramanian2 Agenda ► Introduction ► Standard design for security systems ►

Introduction to Core Database Concepts Getting started with Databases and Structure Query Language (SQL)

z/Ware 2.0 Technical Overview

HMA Identity Management Status

Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.

Introduction How to combine and use services in different security domains? How to take into account privacy aspects? How to enable single sign on (SSO)

IBM AS 400 online Training in Hyderabad

Architecture Competency Group

Introduction of Week 11 Return assignment 9-1 Collect assignment 10-1

SharePoint services Provides team collaboration through SharePoint Sites and makes it easy for communities to work together on documents, tasks, contacts,

Microsoft Azure Services Platform

How to install and manage exchange server 2010 OP Saklani.

Presentation transcript:

10/25/20151 Single Sign-On Web Service Supervisors: Viktor Kulikov Alexander Sherman Liana Lipstov Pavel Bilenko

10/25/20152 Background Multiple applications at the faculty use different sign on systems to identify the users. Multiple applications at the faculty use different sign on systems to identify the users. All users are students, staff or faculty members that have accounts on department server or at the main Technion systems such as T2, TX, Department Active Directory etc. All users are students, staff or faculty members that have accounts on department server or at the main Technion systems such as T2, TX, Department Active Directory etc.

10/25/20153 Why Bother? Each application must identify the user by creating and managing user profiles. Each application must identify the user by creating and managing user profiles. User that uses several applications has independent profile at each application (username, password, user information). User that uses several applications has independent profile at each application (username, password, user information). When changing some profile details user must do so at all existing profiles, which makes that simple update complex time consuming operation. When changing some profile details user must do so at all existing profiles, which makes that simple update complex time consuming operation. It also results in users that prefer not to update their profiles at all or to update profile on only some of the profiles. It also results in users that prefer not to update their profiles at all or to update profile on only some of the profiles. As a result several profiles of the same user contain different (not updated) information about the user. More over, user has different passwords for each profile. As a result several profiles of the same user contain different (not updated) information about the user. More over, user has different passwords for each profile.

10/25/20154 Project goals Create a managed single sign-on web service which will manage: Create a managed single sign-on web service which will manage: allowed software modulesallowed software modules authentication settings per moduleauthentication settings per module Make the web service configuration we page user friendly: Make the web service configuration we page user friendly: Easy, self explainable interface.Easy, self explainable interface. Comfortable designComfortable design No more new administrator=new applicationNo more new administrator=new application "Correct" programming "Correct" programming High cohesionHigh cohesion Low couplingLow coupling

10/25/20155 Concept Module calls web service Module calls web service Web service verify that application with given ID exist at configuration DB Web service verify that application with given ID exist at configuration DB If application exists, web service retrieves application settings from configuration DB If application exists, web service retrieves application settings from configuration DB Web service retrieves from application data sources ID or profile data and returns it to calling application Web service retrieves from application data sources ID or profile data and returns it to calling application

10/25/20156 Terms SOAP - Simple Object Access Protocol a protocol specification for exchanging structured information in the implementation of Web Services SOAP - Simple Object Access Protocol a protocol specification for exchanging structured information in the implementation of Web Services Web Service – Web Application Programming Interface (API) that can be accessed over a network and executed on a remote system hosting the requested services. Web Service – Web Application Programming Interface (API) that can be accessed over a network and executed on a remote system hosting the requested services. LDAP - Lightweight Directory Access Protocol an application protocol for querying and modifying directory services running over TCP/IP LDAP - Lightweight Directory Access Protocol an application protocol for querying and modifying directory services running over TCP/IP Active Directory - is a directory structure used on Microsoft Windows based computers and servers to store information and data about networks and domains Active Directory - is a directory structure used on Microsoft Windows based computers and servers to store information and data about networks and domains LINQ-Language Integrated Query is a Microsoft.NET Framework component that adds native data querying capabilities to.NET languages. LINQ-Language Integrated Query is a Microsoft.NET Framework component that adds native data querying capabilities to.NET languages.

10/25/20157 Main architecture diagram Web service LDAP LINQ to SQL Configuration DB Data sources SSLSOAP Applications

10/25/20158 Class diagram Builds proper URL for LDAP direcory Gets user ID from data sources for cpecified application Gets user data from data sources for cpecified application Varifies that provided ID is valid Adds provided message to Log table

10/25/20159 Sequence diagram When application asks web service for identification of a user the following actions happen: When application asks web service for identification of a user the following actions happen: 10/25/20159 Application WebService GetUserID/GetUserData IsValidModule(ApplicationID) buildURL(URL, baseDN) writeToLog(ApplicationID, msg)

10/25/ Web page Features Easy, self explainable interface :home page with instructions, tooltips, intuitive fields, confirmation request before deletion. Easy, self explainable interface :home page with instructions, tooltips, intuitive fields, confirmation request before deletion. Comfortable design :inactive fields, visual partition of attributes, pleasant colors. Comfortable design :inactive fields, visual partition of attributes, pleasant colors. A special Log tab that contains all the important errors received by webservice: helps the administrator to track those errors and understand their origin. A special Log tab that contains all the important errors received by webservice: helps the administrator to track those errors and understand their origin.

10/25/201511Snapshots

10/25/201512Snapshots

10/25/201513Snapshots

10/25/201514Snapshots

10/25/201515Snapshots

10/25/ What have we learned? Work With: LDAP, SOAP, XML files, LINQ, Active directory. Work With: LDAP, SOAP, XML files, LINQ, Active directory.

10/25/ Thank you.